Poslao: 01 Apr 2011 17:52
|
offline
- MilosKS91
- Ugledni građanin
- Pridružio: 01 Apr 2011
- Poruke: 321
|
Molim vas da mi pomognete oko instalacije antivirusa.Ima problem zato sto mi se Avast i avira prekinu u pola instalacije i sve iz pocetka.To mi se desava na laptopu.A na desktop racunaru mi stoji instalirana avira koja nece ni da se pokrene ni da se izbrise.
|
|
|
|
|
|
Poslao: 01 Apr 2011 19:19
|
offline
- dr_Bora
- Anti Malware Fighter
Rank 2
- Pridružio: 24 Jul 2007
- Poruke: 12280
- Gde živiš: Höganäs, SE
|
Hajde da probamo opet:
http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html
Znači, na tom linku se nalazi tema pod nazivom: "Kako otvoriti temu u Ambulanti".
Potrebno je da pročitaš i ispratiš linkovano uputstvo za kreiranje dijagnostičkih izveštaja pa će onda neko da proveri da li su problemi koje opisuješ prouzrokovani malicioznim programima.
|
|
|
|
Poslao: 02 Apr 2011 20:21
|
offline
- MilosKS91
- Ugledni građanin
- Pridružio: 01 Apr 2011
- Poruke: 321
|
Korak 1
1.Nakon reinstaliranja windows na laptopu javlja se problem oko toga sto ne mogu da instaliran ni avast ni aviru.
2.kada sam zeleo da instaliram antivirus
3.koristio sam malwerbytes za pretragu.nasao je nekoliko malwera i ocistio sam to medjutim nista.antivirus i dalje nece da se instalira
4.adsl konekcijom ptt,1.5 mbps
Korak 2
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Zoran at 20:16:13.59 on Sat 04/02/2011
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2940.2377 [GMT 2:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Atheros\ACU.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\WINDOWS\system32\wuauclt.exe
C:\DOCUME~1\Zoran\LOCALS~1\Temp\wincicy.exe
C:\DOCUME~1\Zoran\LOCALS~1\Temp\w91fff.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Documents and Settings\Zoran\My Documents\Downloads\dds.scr
.
============== Pseudo HJT Report ===============
.
BHO: GOM Player + Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: GOM Player + Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
uRun: [TOSCDSPD] c:\program files\toshiba\toscdspd\toscdspd.exe
mRun: [ACU] "c:\program files\atheros\ACU.exe" -nogui
mRun: [Camera Assistant Software] "c:\program files\camera assistant software for toshiba\traybar.exe" /start
mRun: [THotkey] c:\program files\toshiba\toshiba applet\thotkey.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [SmoothView] c:\program files\toshiba\toshiba zooming utility\SmoothView.exe
mRun: [TPSMain] TPSMain.exe
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [Battery Optimizer] c:\program files\reviversoft\battery optimizer\BatteryOptimizer.exe
mRunOnce: [InstallShieldSetup] c:\progra~1\instal~1\{67e32~1\setup.exe -rebootc:\progra~1\instal~1\{67e32~1\reboot.ini -l0x0009
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
mPolicies-system: EnableLUA = 0 (0x0)
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\docume~1\zoran\applic~1\mozilla\firefox\profiles\04l2cf05.default\
FF - prefs.js: browser.startup.homepage - www.google.rs
FF - prefs.js: network.proxy.type - 0
.
============= SERVICES / DRIVERS ===============
.
R3 amsint32;amsint32;\??\c:\windows\system32\drivers\mjsprn.sys --> c:\windows\system32\drivers\mjsprn.sys [?]
R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2011-4-1 5888]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187B.sys [2011-4-1 342784]
S3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader;c:\windows\system32\drivers\rts5121.sys --> c:\windows\system32\drivers\RTS5121.sys [?]
.
=============== Created Last 30 ================
.
2011-04-02 18:05:10 165376 ----a-w- c:\windows\system32\unrar.dll
2011-04-02 18:05:05 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-04-02 18:05:04 810496 ----a-w- c:\windows\system32\xvidcore.dll
2011-04-02 18:05:04 80896 ----a-w- c:\windows\system32\ff_vfw.dll
2011-04-02 18:05:04 237568 ----a-w- c:\windows\system32\yv12vfw.dll
2011-04-02 18:05:04 183808 ----a-w- c:\windows\system32\xvidvfw.dll
2011-04-02 18:05:04 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-04-02 18:04:53 -------- d-----w- c:\program files\K-Lite Codec Pack
2011-04-02 18:02:56 -------- d-----w- c:\docume~1\zoran\locals~1\applic~1\Thunderbird
2011-04-02 18:00:46 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2011-04-02 18:00:45 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2011-04-02 18:00:29 -------- d-----w- c:\windows\Logs
2011-04-02 18:00:13 819200 ----a-w- c:\program files\windows media player\wmsetsdk.exe
2011-04-02 18:00:13 47616 ----a-w- c:\program files\windows media player\msoobci.dll
2011-04-02 17:58:43 -------- d-----w- c:\docume~1\zoran\applic~1\ReviverSoft
2011-04-02 17:58:41 -------- d-----w- c:\program files\ReviverSoft
2011-04-02 17:58:25 -------- d-----w- c:\windows\RegisteredPackages
2011-04-02 17:55:02 -------- d-----w- c:\docume~1\zoran\locals~1\applic~1\OpenCandy
2011-04-02 17:52:56 -------- d-----w- c:\program files\Ask.com
2011-04-02 17:51:56 -------- d-----w- c:\program files\GRETECH
2011-04-02 17:48:26 -------- d-----w- c:\program files\uTorrent
2011-04-02 17:48:03 -------- d-----w- c:\docume~1\zoran\applic~1\uTorrent
2011-04-02 17:40:54 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-04-02 17:31:39 -------- d-----w- c:\windows\pss
2011-04-02 17:25:30 73728 ----a-w- c:\windows\system32\RTNUninst32.dll
2011-04-02 17:25:30 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2011-04-02 17:25:30 177152 ----a-w- c:\windows\system32\drivers\Rtenicxp.sys
2011-04-02 17:25:05 -------- d-----w- C:\swsetup
2011-04-01 21:42:00 -------- d-----w- c:\windows\system32\PreInstall
2011-04-01 16:42:28 103140 ----a-w- C:\yfurd.pif
2011-04-01 15:22:16 -------- d-----w- c:\docume~1\zoran\applic~1\Malwarebytes
2011-04-01 15:22:10 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-01 15:22:08 -------- d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2011-04-01 15:22:05 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-01 15:22:05 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-01 15:14:26 -------- d--h--w- c:\windows\$hf_mig$
2011-04-01 14:07:51 -------- d-----w- c:\windows\SM56Setup
2011-04-01 14:04:49 -------- d-----w- c:\docume~1\zoran\applic~1\Easeware
2011-04-01 12:05:09 -------- d-----w- c:\program files\Easeware
2011-04-01 11:50:17 -------- d-----w- c:\docume~1\zoran\locals~1\applic~1\Mozilla
2011-04-01 11:39:36 8704 ----a-w- c:\windows\system32\HWSETUP.cpl
2011-04-01 11:39:36 152848 ----a-w- c:\windows\system32\Comdlg32.ocx
2011-04-01 11:38:40 220032 ----a-w- c:\windows\system32\drivers\SynTP.sys
2011-04-01 11:38:40 196608 ----a-w- c:\windows\system32\SynCtrl.dll
2011-04-01 11:38:40 163840 ----a-w- c:\windows\system32\SynCOM.dll
2011-04-01 11:38:40 147456 ----a-w- c:\windows\system32\SynTPAPI.dll
2011-04-01 11:38:40 110592 ----a-w- c:\windows\system32\SynTPCo4.dll
2011-04-01 11:38:40 -------- d-----w- c:\program files\Synaptics
2011-04-01 11:36:38 -------- d-----w- c:\windows\system32\RTCOM
2011-04-01 11:36:23 60288 -c--a-w- c:\windows\system32\dllcache\drmk.sys
2011-04-01 11:36:23 60288 ----a-w- c:\windows\system32\drivers\drmk.sys
2011-04-01 11:33:53 1497600 ----a-w- c:\temp\SFDNWIN.exe
2011-04-01 11:33:52 -------- d-----w- C:\Temp
2011-04-01 11:32:19 -------- d-----w- c:\docume~1\zoran\applic~1\Intel
2011-04-01 11:32:07 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys
2011-04-01 11:32:07 21361 ----a-w- c:\windows\AegisP.sys
2011-04-01 11:29:03 5624832 ----a-w- c:\windows\system\DriveIcon.dll
2011-04-01 11:29:03 46976 ----a-w- c:\windows\system32\drivers\RTSTOR.sys
2011-04-01 11:28:47 757760 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iKernel.dll
2011-04-01 11:28:47 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\ctor.dll
2011-04-01 11:28:47 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\DotNetInstaller.exe
2011-04-01 11:28:47 274432 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iscript.dll
2011-04-01 11:28:47 204800 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iuser.dll
2011-04-01 11:28:47 200836 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iGdi.dll
2011-04-01 11:28:46 331908 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\setup.dll
2011-04-01 11:24:36 40960 ----a-w- c:\windows\system32\TPSAddin.dll
2011-04-01 11:24:35 86016 ----a-w- c:\windows\system32\CpuPerf.dll
2011-04-01 11:24:35 77824 ----a-w- c:\windows\system32\TPwrReg.dll
2011-04-01 11:24:35 49152 ----a-w- c:\windows\system32\TPSTrace.dll
2011-04-01 11:24:35 49152 ----a-w- c:\windows\system32\TPSDel.dll
2011-04-01 11:24:35 45056 ----a-w- c:\windows\system32\TPwrCfg.dll
2011-04-01 11:24:35 40960 ----a-w- c:\windows\system32\TPSMainCtl.dll
2011-04-01 11:24:35 40960 ----a-w- c:\windows\system32\TPSBattM.exe
2011-04-01 11:24:35 266240 ----a-w- c:\windows\system32\TPSMain.exe
2011-04-01 11:24:35 1167360 ----a-w- c:\windows\system32\TPwrSave.cpl
2011-04-01 11:23:00 749568 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iKernel.dll
2011-04-01 11:23:00 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\ctor.dll
2011-04-01 11:23:00 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\DotNetInstaller.exe
2011-04-01 11:23:00 274432 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iscript.dll
2011-04-01 11:23:00 180224 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iuser.dll
2011-04-01 11:22:59 323716 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\setup.dll
2011-04-01 11:22:59 192644 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iGdi.dll
2011-04-01 11:21:47 516096 ----a-w- c:\windows\system32\TOSCDSPD.cpl
2011-04-01 11:21:34 77824 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\ctor.dll
2011-04-01 11:21:34 32768 ------w- c:\program files\common files\installshield\engine\6\intel 32\objectps.dll
2011-04-01 11:21:34 225280 ------w- c:\program files\common files\installshield\iscript\iscript.dll
2011-04-01 11:21:34 176128 ------w- c:\program files\common files\installshield\engine\6\intel 32\iuser.dll
2011-04-01 11:21:33 688260 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\IKernel.exe
2011-04-01 11:18:21 9728 ----a-w- c:\windows\system32\TCMSVR.dll
2011-04-01 11:16:13 53248 ----a-w- c:\windows\system32\CSVer.dll
2011-04-01 11:16:00 -------- d-----w- C:\Intel
2011-04-01 11:15:32 6184960 ----a-w- c:\windows\system32\RTS5121icon.dll
2011-04-01 11:15:12 -------- d-----w- c:\program files\USB 2.0 Card Reader
2011-04-01 11:12:24 -------- d-----w- c:\windows\system32\ReinstallBackups
2011-04-01 11:12:23 -------- d-----w- c:\windows\system32\SoftwareDistribution
2011-04-01 11:12:14 18432 ----a-w- c:\windows\system32\drivers\UVCFTR_S.SYS
2011-04-01 11:11:35 -------- d-----w- c:\program files\Camera Assistant Software for Toshiba
2011-04-01 11:08:32 879464 ----a-w- c:\windows\system32\drivers\rtl8192se.sys
2011-04-01 11:08:32 532456 ----a-w- c:\windows\system32\drivers\rtl819xp.sys
2011-04-01 11:08:32 -------- d-----w- c:\windows\OPTIONS
2011-04-01 11:08:31 342784 ----a-w- c:\windows\system32\drivers\RTL8187B.sys
2011-04-01 11:08:31 315648 ----a-w- c:\windows\system32\drivers\rtl8187Se.sys
2011-04-01 11:08:31 1189864 ----a-w- c:\windows\system32\drivers\rtl8192ce.sys
2011-04-01 11:08:23 451072 ------w- c:\windows\system32\ISSRemoveSP.exe
2011-04-01 11:08:23 -------- d-----w- c:\program files\Realtek WLAN Driver
2011-04-01 10:40:33 -------- d-sh--r- C:\Win
2011-04-01 09:45:48 -------- d-----w- c:\docume~1\alluse~1\applic~1\Atheros
2011-04-01 09:44:04 26496 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2011-04-01 09:43:18 -------- d--h--w- c:\windows\PIF
.
==================== Find3M ====================
.
2011-04-01 11:35:01 315392 ----a-w- c:\windows\HideWin.exe
2011-03-04 19:44:14 59888 ------w- c:\windows\system32\pxwma.dll
2011-03-04 19:44:14 133616 ------w- c:\windows\system32\pxafs.dll
2011-03-04 19:44:12 126448 ------w- c:\windows\system32\pxinsi64.exe
2011-03-04 19:44:12 123888 ------w- c:\windows\system32\pxcpyi64.exe
.
============= FINISH: 20:17:48.15 ===============
https://www.mycity.rs/must-login.png
|
|
|
|
Poslao: 02 Apr 2011 22:58
|
offline
- Fil
- Legendarni građanin
- Pridružio: 11 Jun 2009
- Poruke: 16586
|
Pozdrav MilosKS91,
Na računaru imaš opasnu infekciju - fajl infektor Sality.
Pošto je dezinfekcija nemoguća iz aktivnog Windowsa, preporučujem ti sledeće solucije:
1) Da posetiš temu Primena Live CD Rescue rešenja kako bi skenirao računar sa nekim RescueCD rešenjem. Napisana su detaljna uputstva kako se skenira računar sa popularnim rešenjima. Ovo ti je najlakša solucija, ako nisi zainteresovan za reinstalaciju operativnog sistema.
2) Hard disk možeš da izvadiš iz računara i montiraš ga na drugi računar, koji nije inficiran. Sa tog drugog računara skeniraj montirani hard disk (napomena: ako se odlučiš za ovu varijantu, nemoj ulaziti na zaraženi hard disk dok ga prethodno ne skeniraš i ukloniš infekciju).
3) Formatiraj sistemsku particiju (particiju na kojoj ti je instaliran operativni sistem) i nanovo instaliraj Windows. Nemoj da ulaziš na druge particije, već instaliraj antivirus, ažuriraj ga i skeniraj ostale particije koje imaš. Nakon uklanjanja infekcije, možeš otvarati i druge particije.
Javi za koju si se varijantu odlučio.
|
|
|
|
Poslao: 04 Apr 2011 00:49
|
offline
- MilosKS91
- Ugledni građanin
- Pridružio: 01 Apr 2011
- Poruke: 321
|
Napisano: 02 Apr 2011 23:34
Uh bre.Cuo sam za taj sality.Ja sam na ovom laptopu uradio windows pre 2 dana.Sad znaci sve iz pocetka.Nista sad cu da procitam ovu temu pa cu da vidim sta mi je ciniti.I uzgred hvala puno.
Dopuna: 04 Apr 2011 0:49
Ne znam da li je pametno sto sam na ovaj laptop uradio windows 7 i problem se sam od sebe resio.
|
|
|
|
Poslao: 04 Apr 2011 07:11
|
offline
- Fil
- Legendarni građanin
- Pridružio: 11 Jun 2009
- Poruke: 16586
|
Znači, odlučio si se za varijantu 3. Nadam se da si odmah po instalaciji operativnog sistema instalirao i antivirus i uradio full scan (skeniranje svih particija). Ukoliko nisi, poželjno je da to uradiš kako se infekcija ne bi povratila sa drugih particija.
|
|
|
|
Poslao: 04 Apr 2011 10:29
|
offline
- MilosKS91
- Ugledni građanin
- Pridružio: 01 Apr 2011
- Poruke: 321
|
Danas cu da uradim.Sinoc je vec bilo kasno i moramo sam da idem da legnem.Avast radi bez problema.Sad cu da vidim da li ima virusa.Znam da mi je pre pri otvaranju particije D bio virus,otvara poseban nov prozor a ne nastavlja iz postojeceg.Sada sam video da nema nista.
|
|
|
|
Poslao: 05 Apr 2011 07:31
|
offline
- Fil
- Legendarni građanin
- Pridružio: 11 Jun 2009
- Poruke: 16586
|
Pozdrav MilosKS91,
Ukoliko želiš da prekontrolišemo trenutno stanje tvog računara (da budemo sigurni da je stanje na računaru čisto), bilo bi dobro da postaviš sveže logove, po već pomenutom uputstvu.
Preporučujem ti da koristiš program MCShield za zaštitu USB memorijskih uređaja.
Program možeš preuzeti sa ovoga linka. Nakon instalacije priključiš USB memorijske uređaje, koji će biti skenirani. Na kraju skeniranja ćeš dobiti izveštaj da je uređaj čist ili obaveštenje o uklonjenom malware-u.
|
|
|
|